[squid-users] Allow SFTP connection to port 9122
Emanuel Gonzalez
emanuel_gonzalez at live.com.ar
Thu Jan 19 13:45:51 UTC 2023
Hi all,
Hi, I need some help.
I have configured an instance with squid as a proxy service. HTTP/HTTPS requests pass through the proxy correctly.
acl Safe_ports port 9122
acl SSL_ports port 9122
acl Safe_ports port 22
acl SSL_ports port 22
But I need to connect to an SFTP service that listens on port 9122.
On the squid configuration side I have added port 9122 to the secure ports and the connection host to the hosts allowed in the dstdomain.
I have created the environment variables necessary to be able to exit through the proxy:
http_proxy=http://myprox.prod:3142
ftp_proxy=http://myproxy.prod:3142
https_proxy=http://myproxy.prod:3142
i try the connection but never happen
sftp -v -oProxyCommand='nc -v -xtheprovider-front.prod:3142 %h %p' -oPort=9122 user at sftp.server.com
OpenSSH_6.7p1 Debian-5+deb8u3, OpenSSL 1.0.1t 3 May 2016
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 18: Applying options for *
debug1: Executing proxy command: exec nc -v -xtheprovider front.prod:3142 sftp.server.com 9122
debug1: permanently_set_uid: 0/0
debug1: permanently_drop_suid: 0
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_rsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ed25519-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3
#### squid logs
1674134582.904 0 172.31.29.227 NONE/000 0 NONE error:transaction-end-before-headers - HIER_NONE/- -
Any help?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20230119/c6a2ba1c/attachment.htm>
More information about the squid-users
mailing list